cancel
Showing results for 
Search instead for 
Did you mean: 
maddivemax
Level 7

FTP rules on a reverse proxy

Hi...

has anyone already configured FTP-rules on a Reverse-proxy-cluster? I am struggeling with the configuration. Though I can authenticate at the Reverse-proxy, the MWG does not try to establish a connection to the Backend-FTP-server.

Here are my rules...see attachments

Would be great if somebody has a hint on how to configure native FTP on a Reverse-Proxy

Thanks,

maddivemax

Message was edited by: maddivemax on 10/1/13 9:34:44 AM CDT
0 Kudos
2 Replies
McAfee Employee

Re: FTP rules on a reverse proxy

I have not. Note on what you are trying, the Next Hop Proxies only support HTTP (from what I remember).

You probably need to disable the "Configure Upstream Server FTP" rule and add an event to "URL rewrite" saying URL.Host = 10.x.x.x

Best,

Jon

0 Kudos
maddivemax
Level 7

Re: FTP rules on a reverse proxy

Hi Jon,

thanks for the hint! I've re-configured the rule according to your post. But unfortunately it doesn't solve my problem.

I also traced packets at MWG and Backend-FTP-Server and saw that no packets do arrive at the FTP-Server. On the other hand MWG receives packets from the client. The client does get authenticated by MWG properly, but obviously MWG does not open a connection to the FTP-Server to pass on the creditentials.

According to the "Rule tracing central" feature the rule (see screenshot) gets executed correctly. So, either there are some more properties needed or in the configuration other settings are required.

Have you ever tested or implemented this feature?

Thanks,

Max

0 Kudos